Element Web 1.12.24-rc.1
Config option to disable client wellknown fetch enhances privacy automatic server discovery leaks to homeserver operators
Read the full articleYou might also wanna read
CVE-2026-11390: CWE-79 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') in blazethemes News Kit Addons For Elementor
The News Kit Addons For Elementor WordPress plugin is affected by a stored cross-site scripting (XSS) vulnerability in all versions up to an
CVE-2026-57213: CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') in rabbitmq rabbitmq-server
RabbitMQ is a messaging and streaming broker. Prior to 3.13.14, 4.0.19, 4.1.10, and 4.2.5, the rabbitmq_federation_management plugin renders
CVE-2026-15284: CWE-79 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') in kingaddons King Addons for Elementor – 80+ Elementor Widgets, 4 000+ Elementor Templates, WooCommerce, Mega Menu, Popup Builder
King Addons for Elementor plugin for WordPress versions up to and including 51.1.62 is vulnerable to a stored cross-site scripting (XSS) fla
CVE-2026-15085: CWE-79 Improper Neutralization of Input During Web Page Generation ("Cross-site Scripting") in Drupal AI SEO/GEO Analyzer
CVE-2026-15085 is a stored cross-site scripting (XSS) vulnerability in the Drupal AI SEO/GEO Analyzer module. It arises from improper neutra
CVE-2026-15081: CWE-89 Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') in Drupal Location Selector
CVE-2026-15081 is an SQL Injection vulnerability in the Drupal Location Selector module. It allows improper neutralization of special elemen
CVE-2026-13347: CWE-22 Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') in templatic1 Hide My WP Lite
The Hide My WP Lite WordPress plugin contains a path traversal vulnerability allowing unauthenticated attackers to read arbitrary files on t
Comments
Sign in to join the conversation.
No comments yet. Be the first.